We run a smtp proxy for this (smap from TIS).
Our DNS MX record points to the firwall, which accepts email through SMAP,
which queues it for sendmail, which runs from cron to send the outgoing mail.
Seem's to work pretty well
T.
At 15:26 15/09/99 -0400, Geoff Smith wrote:
>I'm new to all this Security stuff, so this is probably
>an old question, but here it is, anyway:
>
>Should a mail server be inside or outside a firewall?
>
>Here's why I ask.
>
>1) If it's outside, people could break in and get mail until
> that mail is removed from the server (either by automated
> automated process or the user).
>2) If it's inside, I'd forward port 25 to another machine
> inside where someone might be able to exploit the MTA to
> get access to stuff inside the Firewall.
>
>Do I misunderstand the problem?
>
>Thanks for any insight...
>Norm!
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
